The warning by mod_security is a know issue due to a false positive:
the plugin has a js script called "jquery.cookie-min.js" and mod_sec
identifies the word "cookie" as a hack trial. On the next version of
the plugin I'll just release the jquery cookie plugin with a different
name

Click to expand...

The question is: how can I let mod_security ignore this specific script, or the word cookie as an attack?